CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/01/09 12:26 p.m.•5 views

CVE-2018-12259

An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise...

7.2CVSS7AI score0.00043EPSS

RedhatCVE•added 2026/01/09 12:26 p.m.•7 views

CVE-2018-12323

An issue was discovered on Momentum Axel 720P 5.1.8 devices. A password of EHLGVG is hard-coded for the root and admin accounts, which makes it easier for physically proximate attackers to login at the console...

7.2CVSS7.2AI score0.00043EPSS

RedhatCVE•added 2026/01/09 12:26 p.m.•3 views

CVE-2018-12260

An issue was discovered on Momentum Axel 720P 5.1.8 devices. The root password can be obtained in cleartext by issuing the command 'showKey' from the root CLI. This password may be the same on all devices...

6.7CVSS7.2AI score0.00066EPSS

RedhatCVE•added 2026/01/09 12:24 p.m.•5 views

CVE-2018-12257

An issue was discovered on Momentum Axel 720P 5.1.8 devices. There is Authenticated Custom Firmware Upgrade via DNS Hijacking. An authenticated root user with CLI access is able to remotely upgrade firmware to a custom image due to lack of SSL validation by changing the nameservers in...

4.4CVSS6.9AI score0.00064EPSS

7.2CVSS6.6AI score0.00043EPSS

EUVD-2018-4237

Malware in sbrugna...

6.7CVSS6.6AI score0.00066EPSS

EUVD-2018-4238

Malware in sbrugna...

4.4CVSS4.8AI score0.00052EPSS

EUVD-2018-4239

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-4235

Malware in sbrugna...

4.4CVSS4.8AI score0.00064EPSS

7.4CVSS7.5AI score0.00148EPSS

EUVD-2018-2402

Malware in sbrugna...

Exploits0References2

RedhatCVE•added 2025/05/22 6:56 a.m.•4 views

CVE-2018-12261

An issue was discovered on Momentum Axel 720P 5.1.8 devices. All processes run as root...

4.4CVSS7AI score0.00052EPSS

CNVD•added 2018/06/19 12:0 a.m.•1 views

Unspecified Vulnerability in Momentum Axel 720P

The Momentum Axel 720P is a dual-band HD camera that supports WiFi connectivity. A security vulnerability exists in the Momentum Axel 720P that stems from the use of hard-coded passwords for the root and admin accounts: EHLGVG. An attacker in close physical proximity could exploit this...

7.2CVSS6.5AI score0.00043EPSS

7.2CVSS6.5AI score0.00049EPSS

Momentum Axel 720P Hardcoded RTSP Certificate Vulnerability

The Momentum Axel 720P is a dual-band HD camera that supports WiFi connectivity. A security vulnerability exists in the Momentum Axel 720P version 5.1.8. An attacker can exploit the vulnerability by injecting an SD Card with firmware named 'ezviz.dav' to upgrade the firmware using this file...

4.4CVSS5.5AI score0.00052EPSS

Momentum Axel 720P Buffer Overflow Vulnerability

The Momentum Axel 720P is a dual-band HD camera that supports WiFi connectivity. A buffer overflow vulnerability exists in Momentum Axel 720P version 5.1.8. An attacker can exploit this vulnerability to gain access to user accounts...

6.7CVSS6.6AI score0.00066EPSS

Momentum Axel 720P Information Disclosure Vulnerability

The Momentum Axel 720P is a dual-band HD camera that supports WiFi connectivity. A security vulnerability exists in Momentum Axel 720P version 5.1.8. An attacker can exploit the vulnerability by issuing the 'showKey' command to obtain a plaintext password...

7.2CVSS6.9AI score0.00043EPSS

Momentum Axel 720P Root Account Vulnerability

The Momentum Axel 720P is a dual-band HD camera that supports WiFi connectivity. A security vulnerability exists in Momentum Axel 720P version 5.1.8. The vulnerability can be exploited by an attacker to gain root privileges with the help of a UART pin code to take full control of the system...

4.4CVSS5AI score0.00064EPSS

Momentum Axel 720P DNS Hijacking Vulnerability

The Momentum Axel 720P is a dual-band HD camera that supports WiFi connectivity. A security vulnerability exists in the Momentum Axel 720P version 5.1.8, which stems from the program's lack of SSL authentication. A remote attacker can exploit the vulnerability by hijacking DNS to upgrade the...